Page MenuHomeFreeBSD

Fix broken STARTTLS when SharedMemoryKey is enabled
ClosedPublic

Authored by hrs on Feb 17 2020, 7:33 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Jun 20, 10:54 AM
Unknown Object (File)
Sun, Jun 14, 4:15 PM
Unknown Object (File)
Sat, Jun 13, 2:09 AM
Unknown Object (File)
Wed, Jun 10, 5:26 PM
Unknown Object (File)
Sun, Jun 7, 7:30 AM
Unknown Object (File)
May 10 2026, 10:15 PM
Unknown Object (File)
May 10 2026, 3:48 PM
Unknown Object (File)
May 2 2026, 2:03 AM
Subscribers

Details

Summary

OpenSSL 1.1 API patch for sendmail has a bug which
prevents sm_RSA_generate_key() function from working.
This function is used to generate a temporary RSA key
for a shared memory region used for TLS processing.
Note that 12.0 and 12.1-RELEASE include this bug.

To trigger this bug, SM_CONF_SHM compile-time
option (enabled by default) and SharedMemoryKey
run-time option (not enabled by default) in a .cf file
are required. The latter corresponds to
confSHARED_MEMORY_KEY in a .mc file. See also Bug 242861.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable